what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 5 of 5

Files Date: 2014-08-13

Disqus 2.7.5 Cross Site Request Forgery / Cross Site Scripting

Posted Aug 13, 2014

Authored by Nik Cubrilovic

Cross site request forgery exploit for Disqus for WordPress versions up to 2.7.5 that adds a stored cross site scripting attack.

tags | exploit, xss, csrf

SHA-256 | b2d8ead094b8e10bb30ef3224c49e7dc5a87455af918e2e1e66ebceff7be1203

Download | Favorite | View

Ribose Cross Site Request Forgery

Posted Aug 13, 2014

Authored by Vadodil Joel Varghese

The Ribose Online Social Collaboration Platform suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 42ca4b8211a8e1d60d6cf5c5986b30586ab09989c08ef146df496e2f91aa83ad

Download | Favorite | View

SAS Visual Analytics 6.4M1 Arbitrary File Upload

Posted Aug 13, 2014

Authored by Vadodil Joel Varghese

SAS Visual Analytics version 6.4M1 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, file upload

SHA-256 | 507991f865b35b634138431740240750f98bf8b5e1638af3aef5f3997c9c16d4

Download | Favorite | View

Ganeti Insecure Archive Permission

Posted Aug 13, 2014

Authored by Open Source CERT, Guido Trotter, Helga Velroyen

Ganeti versions 2.10.0 through 2.10.6 and 2.11.0 through 2.11.4 suffer from an insecure file permission vulnerability that leads to sensitive information disclosure.

tags | advisory, info disclosure

SHA-256 | 960a55567a500fcc535191d7724093c1ce0c92016cee319f1e41c90f38166437

Download | Favorite | View

BlackBerry Z10 Authentication Bypass

Posted Aug 13, 2014

Authored by Max Moser, David Gullasch, Martin Schobert

BlackBerry Z10 suffers from a storage and access file-exchange authentication bypass vulnerability.

tags | exploit, bypass

advisories | CVE-2014-2388

SHA-256 | 6ad030936de3e1297588702bfb5cc320dc713c579986b035aa88719f4f3bf757

Download | Favorite | View